Lucene search
Veracode Vulnerability DatabaseVERACODE:22444HistoryFeb 03, 2020 - 8:49 a.m.
SQL Injection
2020-02-0308:49:11
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
8
0.002 Low
EPSS
Percentile
53.6%
github.com/goharbor/harbor is vulnerable to SQL injection. A user with Project-Admin capabilities is able to inject and execute arbitrary SQL statements to read secrets from the underlying database or perform privilege escalation attacks.
| CPE | Name | Operator | Version |
|---|---|---|---|
| github.com/goharbor/harbor | le | 1.8.5 | |
| github.com/goharbor/harbor | le | 1.9.4 |
Related
github
github
SQL Injection in Cloud Native Computing Foundation Harbor
2021-05-18 18:27:36
cve
cve
CVE-2019-19029
2020-03-20 03:15:13
cvelist
cvelist
CVE-2019-19029
2020-03-20 02:02:28
nvd
nvd
CVE-2019-19029
2020-03-20 03:15:13
osv
osv
SQL Injection in Cloud Native Computing Foundation Harbor
2021-05-18 18:27:36
CVE-2019-19029
2020-03-20 03:15:13
prion
prion
Sql injection
2020-03-20 03:15:00
nessus
nessus
VMware Harbor 1.7.x, 1.8.x < 1.8.6 / 1.9.x < 1.9.3
2020-01-14 00:00:00